Hi,
I'm using FreeRadius 0.8.1 on Linux RH 7.3.
I'm using EAP-MD5 with Windows XP client, trying to connect to an Avaya switch.
After the authentication, the XP clinet can access the network so the 802.1x auth
process succeeded but the VLAN assigned to the port the client is connected to is
hello.
i'm develp dot1x radius client(AP).
I have some trouble during setup Winxp my AP --- RADIUS Server , ask
for your help...
AP is dot1x+radiusclient. client use FreeRadius Server code.
using EAP-MD5, and set to winxp to md5-challenge mode.
My environment setup as
HI at all,
Sorry but I have read today here =(http://www.surfnet.nl/innovatie/wlan/) that
FreeRadius
support EAP-TTLS is that true?
Thanks for all your time
Daniele Brevi
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
hi
i would dare to say that it's wrong. at least i don't know anything
about any finished or experimental EAP/TTLS version for freeradius,
though there are perhaps on-going efforts. those are not even integrated
in the CVS yet. and anyway, which client would you use?
greetings,
artur
Again, I've tried to search the archives without
much luck.
I have multiple radius boxes (FreeBSD), and
currently use rsync to update the users file (and others). However, I need
to restart radiusd to notice the changes in the files. I can make a script
that sends a kill -9 locally, but
We have side stepped this problem by using MySQL for everything that could
change, instead of the local files. When you add/remove users etc. from the
database, there is no need to restart radiusd.
Not sure if that helps you, but that is one way around that problem.
Nick
On Wednesday 15
Um,
wouldn't a cron job on each box that checks fairly often (every minute or two)
fora modified users file (or raddb directory) and HUPsradiusd if the
check returns true do the job? That way a file sync would trigger the HUP
on all boxes more or less at the same time.
However, in the past
At 11:13 AM 1/15/2003 +0200, Shmulenson, Eli (Eli) wrote:
Hi,
I'm using FreeRadius 0.8.1 on Linux RH 7.3.
I'm using EAP-MD5 with Windows XP client, trying to connect to an Avaya
switch.
After the authentication, the XP clinet can access the network so the
802.1x auth process succeeded but the
Dickon Newman wrote
I can make a script that sends a kill -9 locally, but what about
remotely? Root cannot ssh, and normal users cannot send a kill -9
to a root process?
Has anyone else had this problem?
I am not sure why you cannot run ssh as root, since I do it on SUSE 8.
You could
Chris Parker [EMAIL PROTECTED] wrote:
At 11:13 AM 1/15/2003 +0200, Shmulenson, Eli (Eli) wrote:
After some investigation I found out that the switch complains that the
Tunnel-Private-Group-Id packet that received is bad. In sniffer traces I
saw that when the radius server is sending the
I can make a script that sends a kill -9 locally, but what about remotely?
Root cannot ssh, and normal users cannot send a kill -9 to a root process?
Sorry, it's kill -1. I put kill -9 beforebut I meant -1. Sorry for any
confusion on that! (Thank you Dan!) :-D
Dickon...
-
List
hi
Won Il ,Lee wrote:
hello. i'm develp dot1x radius client(AP). I have some trouble during
setup Winxp my AP --- RADIUS Server , ask for your
help... AP is dot1x+radiusclient. client use FreeRadius Server code.
using EAP-MD5, and set to winxp to md5-challenge mode.
My
hi Ian
comments inline:
As requested, here is the debug output from something working (a Cisco
against Freeradius) and something not working (A Buffalo against
Freeradius). I will also see what I can pull up from the IAS logs for
the Buffalo if that's of interest? Although I haven't tried
One solution I have implemented, which may or may
not be the best way to go about this is:
Create a small perl or c script to make any
necessary changes to the user files, etc.
At the end of this script, put the sighup command
to restart radius and commit changes.
Set this script to suid
Gezzz While waiting for someone to help, I re-read the archive using a
different search word(s) and found my answer... basically, RTFM'd.
Thanks anyway, but I've got it.
Just in case it helps anyone else, I had my onhold group in the wrong
place. It needs to be in a groupcheck, NOT a
On 15 Jan 2003, at 10:47, Dickon Newman wrote:
From: Dickon Newman [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject:Restarting radiusd remotly
Organization: SkyLAN
Send reply to: [EMAIL PROTECTED]
Date sent:
Rodopi
will process a standard accounting file as captured by FR. The real
question is whether or not your cell network sends radius accounting packets.
If it doesn't there is nothing that free radius can do to solve the
problem.
-Original Message-From:
[EMAIL PROTECTED]
Hi,
Any thoughts on implementing Microsoft EAP CHAP Extensions
(draft-kamath-pppext-eap-mschapv2-00.txt)? (or anyone
already porting rlm_mschap to rlm_eap_mschap?) That is encapsulated the MSCHAPv2 under
EAP? Thanks.
-Paul
-
List info/subscribe/unsubscribe? See
I have to make sql-authorization, i mean man connects to NAS server?
and then his username and login is checked in postgres database, waht
directives i must write, and how i should compile it?
i`m sorry for guru, because of my lama question.
-
List info/subscribe/unsubscribe? See
At 10:31 PM 1/15/2003 +0300, falcon wrote:
I have to make sql-authorization, i mean man connects to NAS server?
and then his username and login is checked in postgres database, waht
directives i must write, and how i should compile it?
i`m sorry for guru, because of my lama question.
Your last
I'm setting up FreeRadius to work with Windows XP. I'm following the howto by
Raymond McKay (http://www.impossiblereflex.com/8021x/eap-tls-HOWTO.htm).
My system only has libsssl.so.0.9.7 and libcrypto.so.0.9.7 instead of the
*.0.9.8 versions.
Is this likely to cause problems or where could I
hi
it is CERTAIN that it won't work and you can get the newest 0.9.8 beta
at openssl.org in the CVS tree.
if this machine is used for production purposes etc. and uses openssl
for internal security, you should consider installing 0.9.8 parallel to
the older (stable) version you have.
ciao
Here
is a best guess.
FR is
only going to issue queries as defined in the config file for oracle.
The
only queries that are going to work for auths are going to be selects, since you
must retreive data for an auth.
I
think you need to calculate the credit time based on a DB trigger in
Hi,
I am trying to set up a single freeradius server (ver 0.8.1) in such a way
that when a person dials eg.
phone-number-1 (for ISP1) they get authenticated against password-file-1,
phone-number-2 (for ISP2) they get authenticated against password-file-2
etc.
I don't want users to have to
24 matches
Mail list logo